Data Breach

The Georgia Institute of Technology disclosed a data breach that exposed the data of up to 1.3 million people, including current and former students, faculty, and staff.

The breach occurred in late March after what the school is calling an “unknown outside entity” gained access to a web application’s data. While the full scope is yet to be determined, the accessed data included names, addresses, Social Security numbers and birthdates.

The email addresses and personal information of 982 million people were compromised in a leak from an unsecured database.

The database belonged to Verifications.io, an “email validation service” that aggregates and sells information about the validity and personal data associated with email lists. Security researcher Bob Diachenko found the information in an unsecured 150GB-sized MongoDB database.

“This is perhaps the biggest and most comprehensive email database I have ever...

Citrix, a major network software company, had its internal network compromised by what appears to be an international hacking campaign.

The company was alerted to the cyberattack by the FBI earlier this month.

“While not confirmed, the FBI has advised that the hackers likely used a tactic known as password spraying, a technique that exploits weak passwords. Once they gained a foothold with limited access, they worked to circumvent additional layers of security,” announced...

An undisclosed number of TurboTax customer accounts have been compromised in a credential stuffing attack.

“Based on our investigation,” a notice told affected users, “…an unauthorized party may have accessed your account by using your usemame and password combination that was obtained from a non-Intuit source. The unauthorized access occurred [on/from] [date/date range]. By...

A recent leak compromised the personal data of all 4,557 active students at the California State Polytechnic University Science School.

This was not a case of hackers gaining access through illicit means or an accidental exposure of an unsecured database. The data was inadvertently sent in a spreadsheet as an email attachment by a university employee. It included names, home and email addresses, gender, ethnicity, as well as academic performance.

When the Identity Theft Resource Center (ITRC) conducted its annual review of data breaches for 2018, they analyzed over 1,200 data breaches that caused millions of people to have their personal identifying information exposed to hackers and thieves. Given that these statistics are from the reported data incidents...

Hackers have published the personal data and documents of hundreds of German politicians and celebrities online.

The data breach was announced by the German government. It included personally identifiable information of politicians and other public figures, and included credit card numbers, email addresses, mobile phone numbers, chat transcripts, and photos of identification.

The information was leaked over the last several weeks on a Twitter account called G0d, and targeted...

A bug on Facebook gave app developers unauthorized access to the photos of as many as 6.8 million users.

The bug, which affected Facebook’s photo API, was active from September 13 through September 25, when it was discovered by Facebook and fixed. September 25 was coincidentally the same day the company announced a massive security breach...

Offer 24/7 CyberScout Protection

CyberScout's partnership options help you safeguard the identity and privacy of your policyholders, customers, members and employees. Discover how a customized program can help build brand loyalty, customer retention, and quickly generate long-term recurring revenue.